OVAL Reference oval:org.opensuse.security:def:65118

Oval Definition:

oval:org.opensuse.security:def:65118

Revision Date:	2020-12-01	Version:	1
Title:	Security update for qemu (Important)
Description:	This update for qemu fixes the following issues: - CVE-2020-7039: Fixed a heap buffer overflow in tcp_emu() routine while emulating IRC and other protocols (bsc#1161066). - CVE-2019-15034: Fixed a buffer overflow in hw/display/bochs-display.c due to improper PCI config space allocation (bsc#1166379). - CVE-2020-1711: Fixed an out of bounds heap buffer access iscsi_co_block_status() routine which could have allowed a remote denial of service or arbitrary code with privileges of the QEMU process on the host (bsc#1166240). - CVE-2019-6778: Fixed a heap buffer overflow in tcp_emu() routine while emulating the identification protocol and copying message data to a socket buffer (bsc#1123156). - CVE-2020-8608: Fixed a heap buffer overflow in tcp_emu() routine while emulating IRC and other protocols (bsc#1163018). - CVE-2019-20382: Fixed a memory leak in the VNC display driver which could have led to exhaustion of the host memory leading to a potential Denial of service (bsc#1165776). - Fixed a live migration error (bsc#1154790). - Fixed an issue where migrating VMs on KVM gets missing features:ospke error (bsc#1162729).
Family:	unix	Class:	patch
Status:		Reference(s):	1123156 1143436 1154790 1161066 1162729 1163018 1165776 1166240 1166379 1172643 CVE-2019-15034 CVE-2019-20382 CVE-2019-3881 CVE-2019-6778 CVE-2020-10759 CVE-2020-1711 CVE-2020-7039 CVE-2020-8608 openSUSE-SU-2020:0861-1 SUSE-SU-2020:0844-1 SUSE-SU-2020:1681-1
Platform(s):	openSUSE Leap 15.2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1	Product(s):
Definition Synopsis
openSUSE Leap 15.2 is installed AND Package Information ruby2.5-rubygem-bundler-1.16.1-lp152.4.3 is installed OR ruby2.5-rubygem-bundler-doc-1.16.1-lp152.4.3 is installed OR rubygem-bundler-1.16.1-lp152.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information qemu-3.1.1.1-9.14 is installed OR qemu-tools-3.1.1.1-9.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information fwupd-1.0.9-6.3 is installed OR fwupd-devel-1.0.9-6.3 is installed OR fwupd-lang-1.0.9-6.3 is installed OR libfwupd2-1.0.9-6.3 is installed OR typelib-1_0-Fwupd-2_0-1.0.9-6.3 is installed

BACK